News
Eurocops take down 'secure' criminal chat system known as Matrix
French and Dutch police have taken down the Matrix chat app, which was designed by criminals for criminals to be a secure encrypted messaging tool.…
FTC scolds two data brokers for allegedly selling your location to the metre
The FTC has reached a settlement with two data brokerages over allegations they harvested precise location data that shows when people entered hospitals, places of worship, and even attended protests supporting the late George Floyd.…
Perfect 10 directory traversal vuln hits SailPoint's IAM solution
It's time to rev up those patch engines after SailPoint disclosed a perfect 10/10 severity vulnerability in its identity and access management (IAM) platform IdentityIQ.…
Major energy contractor reports 'limited' access to IT after ransomware locks files
American energy contractor ENGlobal disclosed that access to its IT systems remains limited following a ransomware infection in late November.…
Severity of the risk facing the UK is widely underestimated, NCSC annual review warns
The number of security threats in the UK that hit the country's National Cyber Security Centre's (NCSC) maximum severity threshold has tripled compared to the previous 12 months.…
Russia gives life sentence to Hydra dark web kingpin after seizing a ton of drugs
A Russian court has handed a life sentence to the head of the infamous online drugs souk Hydra, and 15 of his co-conspirators will also spend many years behind bars.…
Data on 760K workers from Xerox, Nokia, BofA, Morgan Stanley and more dumped online
Hundreds of thousands of employees from major corporations including Xerox, Nokia, Koch, Bank of America, Morgan Stanley and others appear to be the latest victims in a massive data breach linked to last year's attacks on file transfer tool MOVEit.…
AWS unveils cloud security IR service for a mere $7K a month
Re:Invent Amazon Web Services has a new incident response service that combines automation and people to protect customers' AWS accounts - at a hefty price.…
Discover the future of Linux security
Webinar Linux security is a component that sits at the heart of today's IT landscape.…
Russia arrests one of its own – a cybercrime suspect on FBI's most wanted list
An alleged former affiliate of the LockBit and Babuk ransomware operations, who also just happens to be one of the most wanted cybercriminals in the US, is now reportedly in handcuffs.…
Telco security is a dumpster fire and everyone's getting burned
Opinion Here's a front-page headline you won't see these days: CHINA'S SPIES ARE TAPPING OUR PHONES. Not that they're not – they are – but, like the environment, there's so much cybersecurity horror in the media that, yes, of course they are. And?…
Interpol nabs thousands, seizes millions in global cybercrime-busting op
Infosec in brief Interpol and its financial supporters in the South Korean government are back with another round of anti-cybercrime arrests via the fifth iteration of Operation HAECHI, this time nabbing more than 5,500 people suspected of scamming and seizing hundreds of millions in digital and fiat currencies. …
RansomHub claims to net data hat-trick against Bologna FC
Italian professional football club Bologna FC is allegedly a recent victim of the RansomHub cybercrime gang, according to the group's dark web postings.…
Zabbix urges upgrades after critical SQL injection bug disclosure
Open-source enterprise network and application monitoring provider Zabbix is warning customers of a new critical vulnerability that could lead to full system compromise.…
Ransom gang claims attack on NHS Alder Hey Children's Hospital
Yet another of the UK's National Health Service (NHS) systems appears to be under attack, with a ransomware gang threatening to leak stolen data it says is from one of England's top children's hospitals.…
Fighting cybercrime with actionable knowledge
Sponsored Post Cybercrime never sleeps. As threats continue to evolve and attack surfaces become broader and harder to defend, it has never been more important for the good guys to keep their skills sharp and their knowledge up to date.…
NHS major 'cyber incident' forces hospitals to use pen and paper
The ongoing cybersecurity incident affecting a North West England NHS group has forced sites to fall back on pen-and-paper operations, according to a statement.…
The only thing worse than being fired is scammers fooling you into thinking you're fired
A current phishing campaign scares recipients into believing they've been sacked, when in reality they've been hacked – and infected with infostealers and other malware that means a payday for the crooks behind the scam.…
Salt Typhoon's surge extends far beyond US telcos
The reach of the China-linked Salt Typhoon gang extends beyond telecommunications giants in the United States, and its arsenal includes several backdoors – including a brand-new malware dubbed GhostSpider – according to Trend Micro researchers.…
T-Mobile US takes a victory lap after stopping cyberattacks: 'Other providers may be seeing different outcomes'
Attackers - possibly China's Salt Typhoon cyber-espionage crew - compromised an unnamed wireline provider's network and used this access to try to break into T-Mobile US systems multiple times over the past few weeks, according to its Chief Security Officer Jeff Simon. …